Publications

Baker, Roger J.; Deland, Sharon M.; Williams, Adam D.; Pattengale, Nicholas D.; Graves, Russell E.

Abstract not provided.

Wilson, Andrew T.; Pattengale, Nicholas D.; Forsythe, James C.; Carvey, Brad

In cybersecurity forensics and incident response, the story of what has happened is the most important artifact yet the one least supported by tools and techniques. Existing tools focus on gathering and manipulating low-level data to allow an analyst to investigate exactly what happened on a host system or a network. Higher-level analysis is usually left to whatever ad hoc tools and techniques an individual may have developed. We discuss visual representations of narrative in the context of cybersecurity incidents with an eye toward multi-scale illustration of actions and actors. We envision that this representation could smoothly encompass individual packets on a wire at the lowest level and nation-state-level actors at the highest. We present progress to date, discuss the impact of technical risk on this project and highlight opportunities for future work.

Pattengale, Nicholas D.; Crosby, Sean M.; Ulmer, Craig D.

Abstract not provided.

Branda, Steven B.; Jebrail, Mais J.; Van De Vreugde, James L.; Langevin, Stanley A.; Bent, Zachary B.; Curtis, Deanna J.; Lane, Pamela L.; Carson, Bryan C.; La Bauve, Elisa L.; Patel, Kamlesh P.; Ricken, James B.; Schoeniger, Joseph S.; Solberg, Owen D.; Williams, Kelly P.; Misra, Milind; Powell, Amy J.; Pattengale, Nicholas D.; May, Elebeoba E.; Lane, Todd L.; Lindner, Duane L.; Young, Malin M.; VanderNoot, Victoria A.; Thaitrong, Numrin T.; Bartsch, Michael B.; Renzi, Ronald F.; Tran-Gyamfi, Mary B.; Meagher, Robert M.

Abstract not provided.

Branda, Steven B.; Jebrail, Mais J.; Van De Vreugde, James L.; Langevin, Stanley A.; Bent, Zachary B.; Curtis, Deanna J.; Lane, Pamela L.; Carson, Bryan C.; La Bauve, Elisa L.; Patel, Kamlesh P.; Ricken, James B.; Schoeniger, Joseph S.; Solberg, Owen D.; Williams, Kelly P.; Misra, Milind; Powell, Amy J.; Pattengale, Nicholas D.; May, Elebeoba E.; Lane, Todd L.; Lindner, Duane L.; Young, Malin M.; VanderNoot, Victoria A.; Thaitrong, Numrin T.; Bartsch, Michael B.; Renzi, Ronald F.; Tran-Gyamfi, Mary B.; Meagher, Robert M.

Abstract not provided.

Branda, Steven B.; Jebrail, Mais J.; Van De Vreugde, James L.; Langevin, Stanley A.; Bent, Zachary B.; Curtis, Deanna J.; Lane, Pamela L.; Carson, Bryan C.; La Bauve, Elisa L.; Patel, Kamlesh P.; Ricken, James B.; Schoeniger, Joseph S.; Solberg, Owen D.; Williams, Kelly P.; Misra, Milind; Powell, Amy J.; Pattengale, Nicholas D.; May, Elebeoba E.; Lane, Todd L.; Lindner, Duane L.; Young, Malin M.; VanderNoot, Victoria A.; Thaitrong, Numrin T.; Bartsch, Michael B.; Renzi, Ronald F.; Tran-Gyamfi, Mary B.; Meagher, Robert M.

Abstract not provided.

McDonald, Michael J.; Atkins, William D.; Mulder, John M.; Richardson, Bryan T.; Cassidy, Regis H.; Chavez, Adrian R.; Pattengale, Nicholas D.; Pollock, Guylaine M.; Urrea, Jorge M.; Schwartz, Moses D.

This paper describes a new hybrid modeling and simulation architecture developed at Sandia for understanding and developing protections against and mitigations for cyber threats upon control systems. It first outlines the challenges to PCS security that can be addressed using these technologies. The paper then describes Virtual Control System Environments (VCSE) that use this approach and briefly discusses security research that Sandia has performed using VCSE. It closes with recommendations to the control systems security community for applying this valuable technology.